171 matches found
CVE-2020-28631
Summary : CVE-2020-28631 is a code-execution vulnerability in CGAL libcgal CGAL-5.1.1, arising from the Nef polygon-parsing path. An attacker-supplied file can trigger an out-of-bounds read and type confusion, enabling potentially arbitrary code execution. The advisory text references specific oo...
CVE-2020-28630
CVE-2020-28630 is part of CGAL 5.1.1 Nef polygon-parsing vulnerabilities. The connected sources confirm an out-of-bounds (OOB) read in SNC_io_parser.h (read_sedge) that can lead to code execution when processing crafted CGAL Nef data. Affected software is CGAL libcgal CGAL-5.1.1; exploitation rel...
CVE-2020-28630
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any o...
CVE-2020-28628
CVE-2020-28628 affects CGAL CGAL-5.1.1 Nef polygon-parsing code. The vulnerability is an out-of-bounds read in SNC_io_parser.h (Nef_S2/SNC_io_parser.h) within read_volume() (and related reads in other files as listed in connected sources), which can lead to type confusion and could enable code ex...
CVE-2020-28627
CVE-2020-28627 affects CGAL libcgal CGAL-5.1.1. The Nef polygon-parsing code contains an out-of-bounds read in SNC_io_parser.h (read_volume) that can lead to type confusion and remote code execution when processing crafted input. Exploitation status is not documented in the provided sources; no i...
CVE-2020-28626
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any o...
CVE-2020-28626
CGAL CGAL-5.1.1 contains multiple code-execution vulnerabilities in the Nef polygon-parsing code. An out-of-bounds read and type confusion can be triggered by crafted Nef data, with an oob read reported in SNC_io_parser.h read_facet() and related paths (e.g., incident_volume). Affected component:...
CVE-2020-28626
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any o...
CVE-2020-28625
CVE-2020-28625 concerns CGAL CGAL-5.1.1: in the Nef polygon-parsing code, a specially crafted input file can cause an out-of-bounds read and type confusion in functions such as SNC_io_parser::read_facet() and related paths, potentially enabling code execution. The description in the CVE and linke...
CVE-2020-28624
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any o...
CVE-2020-28624
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any o...
CVE-2020-28624
CGAL CGAL-5.1.1 Nef polygon-parsing contains multiple out-of-bounds read and type-confusion vulnerabilities (occasional code execution) in the Nef_S2/SNC_io_parser.h paths (read_facet, read_vertex, read_hedge, read_sloop, read_sface, etc.). CVE-2020-28624 specifically notes an oob read in SNC_io_...
CVE-2020-28624
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any o...
CVE-2020-28623
CVE-2020-28623 affects CGAL CGAL-5.1.1: multiple code-execution vulnerabilities in the Nef polygon-parsing code, with out-of-bounds reads leading to potential remote code execution. The exploit surface includes oob reads in SNC_io_parser.h (for example SNC_io_parser::read_facet() and related func...
CVE-2020-28622
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any o...
CVE-2020-28622
CGAL-5.1.1 Nef polygon-parsing contains CVE-2020-28622: an out-of-bounds read leading to potential code execution via SNC_io_parser::read_edge() eh->incident_sface() in Nef_S2/SNC_io_parser.h. Debians/GLSA notes confirm multiple related CVEs and advise upgrading CGAL (e.g., to CGAL ≥ 5.4.1 or ...
CVE-2020-28621
Summary (CVE-2020-28621) CGAL CGAL-5.1.1’s Nef polygon-parsing has memory access vulnerabilities that can yield out-of-bounds reads and type confusion, potentially enabling code execution when processing specially crafted input. The CVE-2020-28621 vector is an out-of-bounds read in SNC_io_parser:...
CVE-2020-28620
CVE-2020-28620 is a code-execution vulnerability in CGAL 5.1.1’s Nef polygon-parsing code. The issue stems from out-of-bounds reads in the Nef_S2/SNC_io_parser.h read_edge() path (eh->center_vertex()), which can be triggered by specially crafted input to CGAL’s Nef parsing functionality. Publi...
CVE-2020-28618
CGAL CGAL-5.1.1 Nef polygon-parsing contains multiple memory access and out-of-bounds read vulnerabilities (OOB reads) in various PM/SM/SNC IO parsers, potentially enabling code execution when processing crafted Nef data. CVEs include CVE-2020-28601 through CVE-2020-28636 (and related 2020-3563x/...
CVE-2020-28618
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any o...